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1 DISP: Practical, efficient, secure and fault-tolerant distributed data storage 
Daniel Ellard, James Megquier 

February 2005 ACM Transactions on Storage (TOS), volume i issue i 

Publisher: ACM Press 

Full text available: ^ pdf ( 148.11 KB) Additional Information: full citation 

DISP Is a practical client-server protocol for the distributed storage of immutable data objects, 
between total storage space, computational overhead, and guarantees of availability, integrity, 
item is encoded, what level of Integrity checks are computed and stored with each item, and w 
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Unlinkable serial transactions: protocols and applications 
Stuart G. Stubblebine, Paul F. Syverson, David M. Goldschlag 

November 1999 ACM Transactions on Information and System Security (TISSEC), vou 

Publisher: ACM Press 

Full text available: ^pdf (1 84.87 KB) Additional Information: full citation 

We present a protocol for unlinkable serial transactions suitable for a variety of network-based 
services. The protocol prevents the service from tracking the behavior of its customers, while p 
Our basic protocol structure and recovery protocol are robust against failure in protocol terming 
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^ Glenn Judd, Peter Steenkiste 

^ August 2005 Proceeding of the 2005 ACM SIGCOMM worl<shop on Experimental a| 

Publisher: ACM Press 

Full text available: ^ pdf(6.06 MB) Additional Information: full citation 

Physical layer wireless network emulation has the potential to be a powerful experimental tool, 
wireless channel. In this paper we examine the possibility of using on-card signal strength mea 
ubiquity with which these measurements can be obtained since virtually all wireless devices pre 

Keywords: channel capture, emulation, wireless 
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Practical byzantine fault tolerance and proactive recovery 
Miguel Castro, Barbara Liskov 

November 2002 ACM Transactions on Computer Systems (TOCS), volume 20 issue 4 

Publisher: ACM Press 

Full text available: ^pdf (1.63MB) Additional Information: full citation 

Our growing reliance on online services accessible on the Internet demands highly available sy* 
malicious attacks are a major cause of service Interruptions and they can cause arbitrary beha\ 
to build highly available systems that tolerate Byzantine faults. BFT can be used in practice to i 

Keywords: Byzantine fault tolerance, asynchronous systems, proactive recovery, state machir 



Integratin g security in a large distributed system 
1^. Satyanarayanan 

August 1989 ACM Transactions on Computer Systems (TOCS), volume 7 issue 3 

Publisher: ACM Press 

Full text available: 'g] pdf(2.90 MB) Additional Information: full citation 

Andrew is a distributed computing environment that is a synthesis of the personal computing a 
spanning the Carnegie Mellon University campus. This paper examines the security issues that 
them. These mechanisms include the logical and physical separation of servers and clients, sup 

6 Secure password-based cipher suite for TLS 

May 2001 ACM Transactions on Information and System Security (TISSEC), voii 

Publisher: ACM Press 

Full text available: "g) pdf ( 507.57 KB) Additional Information: full citation 

SSL is the de facto standard today for securing end-to-end transport on the Internet. While the 
web banking. However, the adoption of password-based key-exchange protocols can overcome 
protocol, the standardization of SSL by IETF. The resulting protocol provides secure mutual aut 

Keywords: Authenticated key exchange, dictionary attack, key agreement, password, perfect 





A self-confi g urin g and self-administerin g name system with dynamic address assi gnment 
^ February 2002 ACM Transactions on Internet Technology (TOIT), volume 2 issue i 

Publisher: ACM Press 

Full text available: ^ pdf ( 908,57 KB) Additional Information: full citation 

In this article we present a distributed system that stores name-to-address bindings and provic 
services that are individually self-configuring and self-administering. The name service consists 
System (DNS) program. The DNS agent program automatically configures the Berkeley Interne 

Keywords: Berkeley Internet Name Domain, dynamic reconfiguration, name-to-name address 



8 Securing wireless applications: On securely enablin g intermediarv-based services and pei 
^ Sneha Kasera, Semyon i^izikovsky, Ganapathy S. Sundaram, Thomas Y. C. Woo 

Septennber 2003 Proceedings of the 2003 ACM worl^shop on Wireless security 

Publisher: ACM Press 

Full text available: ^ pdf(310.72 KB) Additional Information: full citation 

Intermediary-based services and performance optimizations are increasingly being considered, 
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user experience of wireless mobile clients at reduced costs. However, in the presence of an enc 
compromising end-to-end security. We propose a new architecture to enable intermediary-bas€ 

Keywords: IPsec, end-to-end security, intermediary, mobile, performance, wireless 



9 Cry pto-based identifiers (CBIDs): Concepts and applications 
Gabriel Montenegro, Claude Castelluccia 

February 2004 ACM Transactions on Information and System Security (TISSEC), voh 

Publisher: ACM Press 

Full text available: "gj pdf(262.76 KB) Additional Information: full citation 

This paper addresses the identifier ownership problem. It does so by using characteristics of St 
calls SUCV Identifiers and Addresses, or, alternatively, Crypto-based Identifiers. Their characte 
SUCV addresses are particularly applicable to solve the address ownership problem that hinder 

Keywords: Security, address ownership, authorization, group management, mobile IPv6, oppc 




10 Authentication and integrity in outsourced databases 
^ Einar Mykletun, Maithili Narasimha, Gene Tsudik 

May 2006 ACM Transactions on Storage (TOS), volume 2 issue 2 

Publisher: ACIVI Press 

Full text available: g pdf(531.47 KB) Additional Information: full citation 

In the Outsourced Database (ODB) model, entities outsource their data management needs to 
store, update, and access (query) their databases. This work provides mechanisms to ensure d 
that assure the querier that the query results have not been tampered with and are authentic ( 

Keywords: Outsourced databases, authentication, data authenticity, data integrity, integrity, i 



Re port of the national workshop on internet voting: issues and research agenda 
C. D. Mote 

May 2002 Proceedings of the 2002 annual national conference on Digital government r 

Publisher: Digital Government Research Center 

Full text available: ^ pdf(539.99 KB) Additional Information: full citation 



12 Report of the national workshop on internet voting: issues and research agenda 
C. D. Mote 

May 2000 Proceedings of the 2000 annual national conference on Digital govet 

Publisher: Digital Government Research Center 

Full text available: pclf(539.99 KB) Additional Information: full citation 

As use of the Internet in commerce, education and personal communication has become comm 
• adding convenience and precision, some believe that Internet voting may reverse the historical 
issued a memorandum in December 1999 requesting that the National Science Foundation exai 

13 Virtual machine monitors: Terra: a virtual machine-based platform for trusted computing 
Tal Garfinkel, Ben Pfaff, Jim Chow, l^lendel Rosenblum, Dan Boneh 

October 2003 Proceedings of the nineteenth ACM symposium on Operating system 

Publisher: ACM Press 

Full text available: fi!| pdfn4Q.31 KB) Additional Information: full citation 
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We present a flexible architecture for trusted computing, called Terra, that allows applications \ 
Applications on Terra enjoy the semantics of running on a separate, dedicated, tamper-resistar 
general-purpose computing platform. Terra achieves this synthesis by use of a trusted virtual n 

Keywords: VMM, attestation, authentication, trusted computing, virtual machine, virtual mach 



14 Physical privacy: Privacy manaaennent for portable recording devices 
J. Alex Halderman, Brent Waters, Edward W. Felten 

October 2004 Proceedings of the 2004 ACM workshop on Privacy in the electronic : 

Publisher: ACM Press 

Full text available: g pdf(321.69 KB) Additional Information: full citation 

The growing popularity of inexpensive, portable recording devices, such as cellular phone came 
set of technologies that can be integrated into recording devices to provide stronger, more acci 
consideration. Our design is based on an informed consent principle, which it supports by the u 

Keywords: camera phones, privacy, recording devices 



15 Internet indirection infrastructure 

^ Ion Stoica, Daniel Adkins, Shelley Zhuang, Scott Shenker, Sonesh Surana 

^ August 2002 ACM SZGCOMM Computer Communication Review , Proceedings of th 

computer communications SIGCOMM '02, volume 32 issue 4 

Publisher: ACM Press 

Full text available: ^ pdf(303.69 KB^ Additional Information: full citation 

Attempts to generalize the Internet's point-to-point comnnunication abstraction to provide servi 
barriers. To ease the deployment of such services, this paper proposes an overlay-based Interr 
Instead of explicitly sending a packet to a destination, each pacl<et is associated with an identif 

Keywords: abstraction, architecture, indirection, internet, scalable 



16 Internet printing protocol (IPP) encoding and transport 
Carl Kugler, Harry Lewis 
December 1998 Standard View, volume 6 issue 4 

Publisher: ACM Press 

Full text available: ^ pdf(399.88 KB) Additional Information: full citation , references 
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Alan Harbitter, Daniel A. Menasce 
^ November 2002 ACM Transactions on Information and System Security (TISSEC), vou 

Publisher: ACM Press 

Full text available: 'Q pdfn.25MB) Additional Information: full citation 

Performance, In terms of user response time and the consumption of processing and communic 
The mix of public key and secret key encryption algorithms typically included in these protocols 
develop a validated modeling methodology to be used for analyzing authentication protocol fea 

Keywords: Authentication, Kerberos, mobile computing, performance modeling, proxy servers 
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>j. Stefan Kopsell, Ulf Hillig 

October 2004 Proceedings of the 2004 ACM workshop on Privacy in the electronic : 

Publisher: ACM Press 

Full text available: gpdfrSQy.ee KB) ' Additional Information: full citation 

We are developing a blocking resistant, practical and usable system for anonymous web surfinc 
users In countries where the free flow of information is legally, organizationally and physically r 
classification of blocking criteria and some general countermeasures. Using these techniques, v 

Keywords: AN.ON, JAP, Mix, blocking resistance 
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# Michael K. Reiter, Matthew K. Franklin, John B. Lacy, Rebecca N. Wright 
January 1996 Proceedings of the 3rd ACM conference on Computer and communications s< 

Publisher: ACM Press 

Full text available: ^pdff1.37 MB) Additional Information: full citation , references , citings, in dex terms 



20 Formal methods: Proving a WS-federation passive requestor profile with a browser model 

# Thomas Grop, Birgit Pfitzmann, Ahmad-Reza Sadeghl 
November 2005 Proceedings of the 2005 worlcshop on Secure web services SWS '05 

Publisher: ACM Press 

Full text available: "g) pdf(415.13 KB) Additional Information: f ull ci tation 

Web-based services are an important business area. For usability and cost-effectiveness these 
currently In the focus of many industrial players, is Federated Identity Managent (FIM). In this 
(including Microsoft Passport, OASIS SAML, and Liberty) is not yet based on rigorous proofs an- 

Keywords: WS-federation passive requestor profile, WSFPI, Identity federation, security proof 
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